Synopsis

Type/Severity

Topic

This update has been rated as having moderate security impact by the RedHat Security Response Team.

Description

OpenLDAP is an open source suite of Lightweight Directory Access Protocol(LDAP) applications and development tools. LDAP is a set of protocols foraccessing directory services.

These updated openldap packages fix a flaw in the way the OpenLDAP slapddaemon handled modify and modrdn requests with NOOP control on objectsstored in a Berkeley DB (BDB) storage backend. An authenticated attackerwith permission to perform modify or modrdn operations on such LDAP objectscould cause slapd to crash. (CVE-2007-6698, CVE-2008-0658)

Users of openldap should upgrade to these updated packages, which contain abackported patch to correct this issue.

Solution

Before applying this update, make sure that all previously-releasederrata relevant to your system have been applied.

This update is available via Red Hat Network. Details on how to use the Red Hat Network to apply this update are available athttp://kbase.redhat.com/faq/FAQ_58_10188